High severityOSV Advisory· Published Dec 23, 2025· Updated Dec 23, 2025
CVE-2025-51511
CVE-2025-51511
Description
Cadmium CMS v.0.4.9 has a background arbitrary file upload vulnerability in /admin/content/filemanager/uploads.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
cadmium-org/cadmium-cmsPackagist | <= 0.4.9 | — |
Affected products
1- Range: v.0.3.0, v.0.4.0, v.0.4.1, …
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/advisories/GHSA-qx44-p258-3c2vghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-51511ghsaADVISORY
- github.com/cadmium-org/cadmium-cms/issues/23ghsaWEB
News mentions
0No linked articles in our index yet.